Slackwarearm-current ChangeLog (2019-05-25)
Sat May 25 08:08:08 UTC 2019
The mini root filesystem has been updated:
ftp://ftp.arm.slackware.com/slackwarearm/slackwarearm-devtools/minirootfs/slack-current-miniroot_24May19.tar.xz
Packages
Upgraded
- a/aaa_terminfo-6.1_20190518-arm-1.txz
- ap/qpdf-8.4.2-arm-1.txz
- ap/vim-8.1.1365-arm-1.txz
Compiled against perl-5.30.0. - d/bison-3.4.1-arm-1.txz
- d/parallel-20190522-noarch-1.txz
- d/perl-5.30.0-arm-1.txz
Module upgraded: Net-SSLeay-1.88 - d/strace-5.1-arm-1.txz
- l/glib2-2.60.3-arm-1.txz
- l/libidn2-2.2.0-arm-1.txz
- l/ncurses-6.1_20190518-arm-1.txz
- n/curl-7.65.0-arm-1.txz
This release fixes the following security issues:
Integer overflows in curl_url_set
tftp: use the current blksize for recvfrom()
For more information, see:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5435
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5436
(* Security fix *) - n/p11-kit-0.23.16.1-arm-1.txz
- n/samba-4.10.4-arm-1.txz
- x/mesa-19.0.5-arm-1.txz
- xap/mozilla-firefox-60.7.0esr-arm-1.txz
This release contains security fixes and improvements. Some of the patched
flaws are considered critical, and could be used to run attacker code and
install software, requiring no user interaction beyond normal browsing.
For more information, see:
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9815
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9816
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9817
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9818
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9819
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9820
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11691
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11692
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11693
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-7317
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9797
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2018-18511
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11694
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-11698
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-5798
https://www.mozilla.org/en-US/security/advisories/mfsa2019-14/#CVE-2019-9800
(* Security fix *) - xap/rdesktop-1.8.6-arm-1.txz
This is a small bug fix release for rdesktop 1.8.5. An issue was discovered
soon after release where it was impossible to connect to some servers. This
issue has now been fixed, but otherwise this release is identical to 1.8.5. - xap/vim-gvim-8.1.1365-arm-1.txz
Compiled against perl-5.30.0. - xfce/Thunar-1.8.6-arm-1.txz
- xfce/thunar-volman-0.9.2-arm-1.txz
Rebuilt
- ap/texinfo-6.6-arm-2.txz
Recompiled against perl-5.30.0. - _KDEMOD_ kde/perlkde-4.14.3-arm-8.txz
Recompiled against perl-5.30.0. - _KDEMOD_ kde/perlqt-4.14.3-arm-9.txz
Recompiled against perl-5.30.0. - n/epic5-2.1.1-arm-2.txz
Recompiled against perl-5.30.0. - n/irssi-1.2.0-arm-2.txz
Recompiled against perl-5.30.0. - n/net-snmp-5.8-arm-5.txz
Recompiled against perl-5.30.0. - n/ntp-4.2.8p13-arm-2.txz
Recompiled against perl-5.30.0. - xap/hexchat-2.14.2-arm-4.txz
Recompiled against perl-5.30.0. - xap/rxvt-unicode-9.22-arm-6.txz
Recompiled against perl-5.30.0.